C-Panel suffers from a reflective cross site scripting vulnerability in dir.html.
ebfda62ea7ba421bad621e4c285d4c38e464d5d1a5faa994c8009e413af2f391Details
=============
Product: Cpanel
Security-Risk: High
Remote-Exploit: yes
Vendor-URL: http://www.cpanel.net
Advisory-Status: NotPublished
Credits
=============
Discovered by: Rafay Baloch of RafayHackingArticles(RHA)
Affected Products:
=============
Cpanel's Latest Version
Description
=============
"Simple website management."
More Details
=============
I have discsovered a non persistent Cross site scripting (XSS) inside
Cpanel,
the vulnerability can be easily exploited and can be used to steal cookies,
perform
phishing attacks and other various attacks compromising the security of a
user.
Proof of Concept
=============
Log into your CPanel accoutn and navigate to the following link:
https://gator1347.hostgator.com:2083/frontend/x3/files/dir.html?showhidden=1&dir=
Now insert your xss payload inside Dir parameter.
Exploit
=============
https://localhost/frontend/x3/files/dir.html?showhidden=1&dir=%3Cimg%20src=x%20onerror=prompt%280%29;%3E
Solution
=============
Edit the source code to ensure that input is properly sanitized.
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed